9899cc8c16deb58ff95fe8dbf8c939d3

Sharing

Copy URL Twitter E-mail

General

Target

9899cc8c16deb58ff95fe8dbf8c939d3
Size

150KB
MD5

9899cc8c16deb58ff95fe8dbf8c939d3
SHA1

98d2f792c7d4124d81a7c299318c546f3556f16d
SHA256

e14d7f254d59293461ca46208011eded26ed696d93168eeaa2a3ee9ce60a07d9
SHA512

72d97b10be36e8800d796cf61f54ee73cded499fd9547766decf5cd71c262fa6034ed400b38a7d3beca5b8e8940edfdd3641e769c452c37ab80968fbd4290c01
SSDEEP

3072:jGfwO+ea6Nsac3ADkdOsH1uo41b7Q+91wjxQsm5:jGfwO+ANslvOsH1T41V91wj2sm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9899cc8c16deb58ff95fe8dbf8c939d3

Files

9899cc8c16deb58ff95fe8dbf8c939d3
.exe windows:4 windows x86 arch:x86

5b011ffc4a7f0d34ed28830dceb079ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegQueryInfoKeyW
RegEnumValueA
RegEnumKeyExA
RegEnumKeyExW
RegGetKeySecurity
RegCreateKeyExA
RegQueryValueExW
RegQueryValueW
RegFlushKey
RegEnumValueW
RegDeleteKeyA
RegOpenKeyExW
RegOpenKeyW
RegOpenKeyA
RegCreateKeyW
RegDeleteValueW
RegReplaceKeyA
RegDeleteValueA

kernel32

FindFirstFileA
GetCPInfo
FindAtomA
CreateProcessA
GetStdHandle
GetFileTime
DeleteFileA
CreateDirectoryA
WriteFile
ReadFile
DeleteFileW
DeleteAtom
CopyFileW
GetConsoleMode
CopyFileA
ExitThread
CreateThread
GetCommandLineA
OpenFile
Sleep

comctl32

DrawStatusText
CreateStatusWindow
CreateToolbarEx
MenuHelp
DrawStatusTextW
DrawStatusTextA
CreateToolbar
CreateToolbar
ImageList_DragEnter
CreateToolbarEx
ImageList_Add
ImageList_DragLeave
CreateUpDownControl
ImageList_Add
CreateToolbarEx
CreateToolbarEx
CreateUpDownControl
DllGetVersion
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Copy
CreateMappedBitmap
DrawStatusTextA
ImageList_AddIcon
CreateToolbar
MenuHelp
ImageList_DragEnter

user32

LoadCursorA
DrawIconEx
CalcMenuBar
IsWindow
DrawIcon
GetMenu
DialogBoxParamW
AppendMenuA
CreateIcon
GetFocus
EndDialog
CloseWindow
GetDlgItem
GetDC
CopyIcon
DrawIcon
CreateIcon
DialogBoxParamA
InsertMenuA
AppendMenuW
CopyImage
GetMenu

gdi32

CancelDC
AddFontResourceTracking
RestoreDC
ClearBitmapAttributes
SetTextColor
GetClipBox
BeginPath
GetCurrentPositionEx
CreateSolidBrush
AbortPath
AddFontResourceW
BitBlt
GetBrushOrgEx
AddFontMemResourceEx
CloseFigure
AddFontResourceExA
CopyMetaFileA

shell32

SHFindFiles
DragQueryFileW
SHChangeNotifyDeregister
DragQueryFileA
ExtractIconResInfoW
PathGetShortPath
FindExeDlgProc
DragAcceptFiles
DragQueryFile
DllGetVersion
SHUpdateImageA
CheckEscapesW
ExtractIconEx
SHDefExtractIconW
ExtractIconA
FreeIconList
ExtractIconResInfoA
ExtractIconExA
SHChangeNotifyRegister

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 101KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 255B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 985B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b011ffc4a7f0d34ed28830dceb079ec

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

user32

gdi32

shell32

Sections

.text Size: 24KB - Virtual size: 24KB

.data Size: 119KB - Virtual size: 118KB

.bbs Size: - Virtual size: 101KB

.idata Size: 4KB - Virtual size: 3KB

.tls Size: - Virtual size: 255B

.rdata Size: 512B - Virtual size: 985B

.rsrc Size: 1024B - Virtual size: 20KB

.text
Size: 24KB - Virtual size: 24KB

.data
Size: 119KB - Virtual size: 118KB

.bbs
Size: - Virtual size: 101KB

.idata
Size: 4KB - Virtual size: 3KB

.tls
Size: - Virtual size: 255B

.rdata
Size: 512B - Virtual size: 985B

.rsrc
Size: 1024B - Virtual size: 20KB